The present document provides a comprehensive security event classification model and the associated taxonomy (based on already existing results and hands-on user experience)@ covering both security incidents and vulnerabilities. These 2 latter ones become nonconformities when they violate organization's security policy. The present document (GS ISI 002) is meant mainly to support operational security staff in their effort to qualify and categorize the detected security events@ and more generally to all stakeholders (especially CISOs and IT security managers) in their needs to establish a common language.
GS ISI 002-2013 history
2015GS ISI 002-2015 Information Security Indicators (ISI); Event Model A security event classification model and taxonomy (V1.2.1)
2013GS ISI 002-2013 Information Security Indicators (ISI); Event Model A security event classification model and taxonomy (V1.1.1)